Cybersecurity Engineer

About The Position

Requirements

• Strong experience in cloud security architecture and engineering (AWS/GCP/Azure).
• Hands-on knowledge of IaC, DevSecOps, automation, and security tooling .
• Offensive security experience (Red Team, pentesting, adversary simulation).
• Defensive security experience (Blue Team, detection, response, and hardening).
• Proven ability to collaborate across engineering, security, and IT organizations.

Nice To Haves

• Experience with building or securing LLM/AI agents , vector DBs, embeddings, RAG pipelines, or AI-driven automation workflows.
• Familiarity with SOC 2, ISO 27001, ISO 42001, GDPR, AI Act, NIST CSF.

Responsibilities

• Design, implement, and maintain secure architectures for multi-cloud environments (AWS, GCP, Azure), ensuring confidentiality, integrity, and availability of information assets.
• Build, automate, and maintain security controls and guardrails using reusable internal tools and services (bots, CLI tooling, IaC modules, security pipelines, policy-as-code).
• Provide expert security guidance to engineering teams that build and operate services, enabling secure product delivery without blocking or owning their SDLC .
• Evaluate the organization's security posture by simulating real-world cyberattacks , leveraging offensive tactics, techniques, and procedures (TTPs).
• Identify and exploit vulnerabilities across networks, cloud workloads, identities, and applications to expose potential security gaps before adversaries do .
• Collaborate with Blue Team to translate findings into strengthened preventive and detective controls , continuous improvement, and validated resilience.
• Monitor, protect, and defend the organization's infrastructure against cyber threats, ensuring rapid detection, triage, and coordinated incident response.
• Implement and tune vulnerability management, threat protection, and security monitoring controls across cloud platforms, services, endpoints, and applications.
• Ensure standards, policies, and operational processes meet industry best practices and regulatory requirements , enabling proactive risk reduction and business continuity.
• Design, develop, and secure internal AI-based tools (chatbots, code assistants, semantic search engines, data-prep pipelines, agent automations) used by technical and non-technical teams.
• Implement automated AI governance and security controls to protect data, models, and prompts, ensuring safe usage aligned to ethical, regulatory, and privacy frameworks (e.g., ISO 42001, GDPR, AI Act).
• Enable “ secure-by-default ” AI adoption across Development, IT, and business areas through guidance, reusable components, and integration patterns.

Benefits

• Well-funded and proven startup with large ambitions and competitive salaries.
• Entrepreneurial culture where pushing limits, creating and collaborating is everyday business.
• Open communication with management and company leadership.
• Small, dynamic teams = massive impact.
• 500USD a year for you to invest in learning.